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(54) Abstract Title 

Securing electronic information in a wireless communication device 

?Jlrn^.^T^!J'?IC^^^^ device such as a portable cellular telephone has a microcontroller 202 and an 

external memory 204. The microcontroller has a one-time - programmable security flag 230 that is 
O^^IlT^r^^^ electronic information such as an ESN (electronic serial number) is stored in the memory. 
^o!n^o?^r . n ' 1^ s«^"^'*V.f'a9 prevents reprogramming of the memory with a different or 'cloned' ESN. 

?^ compnses an algorithm that generates electronic authentication infomiation 207 

from he electronic mforrnation. The authentication information is also stored in the memory. Upon retrieval 
from the memory for registration, the electronic information is authenticated by generating new 
authentication information to compare with the authentication Information previously stored. The security and 
SSnSr information may be applied to any program stored in a ROM eternal t?a ^ 
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APPARATUS AND METHOD FOR SECURING ELECTRONIC 
INFORMATION IN A WIRELESS COMMUNICATION DEVICE 



Field of the Invention 

The present invention relates generally to a wireless 
conununication device and more particularly to electronic information 
stored in a wireless commtmication device. 



Backgroimd of the Invention 

Wireless communication systems have become increasingly 
15 common. In such systems, a subscriber uses a local commxmication 
device, such as a portable cellular telephone, to commimicate with a 
remote communication device, such as a cellular base station. 
Commtmication is accomplished via the transmission of radio 
frequency (RF) signals between the local device and the remote device. 

To initiate communication, the local device commurucates 
electronic information, such as an electronic serial nvimber (ESN), to 
the remote device for registration. Upon receipt, the remote device 
determines whether the local device is permitted to make calls in the 
system based on the ESN. Aside from being used for limiting system 
access only to authorized users, the ESN is used for billing subscribers 
for calls made over the system. 

In many wireless communication systems, the ESN is 
transmitted to the remote devicie in an un-encrypted manner and, thus, 
it is not secret and is susceptible to receipt by an unauthorized party. 
30 The unauthorized party may engage in fraudulent activity by 

programming the electronic information into, and making cotmterfeit 
calls via, a local device. Such fraud results in billing authorized 
subscribers for calls they did not make. 

In the past, the risk of fraud was reduced by storing the ESN in a 
35 non-volatile memory device within a semiconductor device, such as 



an integrated circuit. More specifically, the ESN was stored in an 
EEPROM (electricaUy erasable progrcunmable read only memory) that 
was internally disposed in a microcontroller employed by the local 
commimication device. In operation, the EEPROM could not be 
5 accessed via the pinouts of the microprocessor and, thus, could not 
easily be reprogrammed or replaced with a "cloned" ESN. 

However, combining an EEPROM on the same integrated circuit 
as a microcontroller is very expensive. The semiconductor 
manufacturing processes capable of providing non-volatile memory 

10 devices are expensive relative to those processes capable of providing 
logic circuitry only. Also, where the non-volatile memory and the 
logic circuitry are combined in a single microcontroller, yield 
reductions due to non- volatile memory programming failures can 
greatly increase the expense of the finished product. 

15 Therefore, what is needed is an apparatus and method for 

securing electronic information, such as an ESN, that does not require 
the use of a non- volatile memory device packaged within a 
microcontroller device. 



20 

Brief Description of the Drawings 

FIG. 1 is a block diagram illustrating a wireless commimication 
system employing remote and local commimication devices; 
25 FIG. 2 is a block diagram of an apparatus employed in a 

controller of the local communication device of FIG, 1; 

FIG. 3 is a flowchart illustrating a method employed by the 
apparatus of FIG. 2 for programming electronic information therein; 

FIG. 4 is a functional block diagram illustrating a method 
30 employed by the apparatus of FIG. 2 for generating an authentication 
code associated with the electronic information of FIG. 3; and 

FIG. 5 is a flowchart illustrating a method employed by the 
apparatus of FIG. 2 to authenticate the electronic information of FIG. 3. 

35 . 
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Detailed Description of the Preferred Embodiments 



An apparatus for securing electroiuc information includes a 
non-volatile memory and a microcontroller. The memory is externally 
coupled to the microcontroller. The microcontroUer comprises a one- 
time programmable sectuity flag diat is programmed when the 
electronic information is stored in the memory. Once programmed, 
the security flag prevents reprogramming of the memory. 
Additionally, the microcontroller comprises an encryption algorithm 
that generates electronic authentication information during 
programming of the electroiuc information. The electronic 
authentication information is stored in the memory along with the 
electronic information. Upon retrieval from the memory for 
registration, the electronic information is authenticated by generating 
new electronic authentication information via the encryption 
algorithm to compare to the electronic authentication information 
stored in the memory. Such authentication prevents swapping out of 
the memory to gain system access. Thus, xmlike the previous 
apparatuses, the present apparatus secures electronic information in a 
memory external to a microcontroller. 

A communication system 100, shown in FIG. 1, comprises 
remote and local communication devices 102 and 104 that 
communicate via a v«reless communication link 106. In the illustrated 
embodiment, the remote and local devices 102 and 104 are a cellular 
base station and a cellular radiotelephone, respectively, and the 
wireless lirtk 106 comprises RF signals. The local device 104 includes 
an antenna 108, a transceiver 110, a controUer 112, and a user interface 
114. The user-interface 114 typically includes a microphone, a speaker, 
a keypad, a display, and an external test cormector. 

When the local device 104 is in a powered-on state, the RF 
signals of the wireless link 106 are received by the antenna 108 and 
converted by the transceiver into receive data signals, which are 
coupled to the controUer 112 via bus 116. The controller 112 processes 
the received data and voice signals that are further coupled, via bus 118, 
to the user interface 114 for output. Voice and data input to the user 



mterface 114 is coupled to the controller 112, via bus 118, for processing 
into transmit data signals. The controller 112 outputs the transmit 
signals on bus 116 for conversion by the transceiver 110 and emission 
by the antenna 108 as the RF signals of the wireless link 106. 
5 The controller 112 includes an apparatus 200, shown in FIG. 2. 

The apparatus 200 includes a microcontroller 202 and an EEPROM 204, 
The EEPROM 204 interfaces to the microcontroller 202 via a serial 
format. The EEPROM 204 includes a location for storing electronic 
information. In the illustrated embodiment, the electronic 

10 information is an electronic serial ntimber (ESN) 205 consisting of a 32 
binary bit number. The ESN 205 imiquely identifies the local device 
104 of ELG. 1 and is used by the local device 104 of FIG. 1 to gain 
authorized access to the commxmication system 100. The EEPROM 204 
of FIG. 2 also includes a location for storing electronic authentication 

15 information used to authenticate the electronic information. In the 

illustrated embodiment, the electronic authentication information is a 
message authentication code (MAC) 207 consisting of a 32 binary bit 
nutnber. 

The microcontroller 202 comprises a microprocessor 208, a one - 

20 time programmable ROM (read-only memory) 210, a configuration 

ROM 211, a mask program ROM 212, a RAM (random-access memory) 
214, an external memory interface 216, and a programming interface 
218. The microprocessor 208 is coupled to the programming interface 
218 via serial bus 226, which is internal to the microcontroller 202. The 

25 microprocessor 208, the one-time programmable ROM 210, the 

configuration ROM 211, the mask program ROM 212, the RAM 214, 
and the external memory interface 216 are coupled by a common 
parallel bus 220, which is internal to the microcontroller 202. The 
microprocessor 208 is coupled to the transceiver 110, other circuitry of 

30 the controller 112, and the user interface 114 via bus 222, which extends 
outside of the microcontroller 202. The programming interface 218 is 
coupled to the user interface 114 via bus 228, which extends outside of 
the microcontroller 202. Busses 222 and 228 may form sub-bxisses of 
busses 116 and 118 of FIG. 1. The external memory interface 216 of FIG. 

35 2 is coupled to the EEPROM 204 via bus 206, which extends outside of 
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the microcontroUer 202. The microcontroUer 202 is preferably 
fabricated in a single integrated circuit using known semiconductor 
fabrication techniques. 

The microprocessor 208 is a parallel device that operates 
responsive to program instructions and data for controlling the 
apparatus 200. The program instructions are electronic information 
stored in the mask program ROM 212 or a ROM (not shown) extemaUy 
coupled to the microcontroller 202. The data is electronic information 
preferably stored in the configuration ROM 211 and the RAM 214. Via 
the common bus 220, the microprocessor 208 accesses the one-time 
programmable ROM 210, the configuration ROM 211, the mask 
program ROM 212, and the RAM 214 to retrieve electronic 
information, such as the program insbxictions and data, therefrom; to 
execute program instructions therein; to store electronic information 
therein; and the like. AU bus transactions involving the common bus 
220 are not visible outside of the microcontroller 202. The one-time 
programmable ROM 210, the mask program ROM 212, and the RAM 
214 can not accessed outside of the microcontroller 202. 

The one-time programmable ROM 210 includes a location for 
storing a security flag for preventing reprogramming of the electronic 
information. In the illustrated embodiment, the security flag is an ESN 
security bit 230 consisting of a one binary bit number. A binary "one" 
in the ESN security bit 230 indicates that the ESN 205 and MAC 207 
have been programmed into the EEPROM 204. A binary "zero" in the 
ESN security bit 230 indicates that the ESN 205 and the MAC 207 have 
not been programmed into the EEPROM 204. The ESN security bit 230 
is stored in the one-time programmable ROM 210 during programming 
of the electronic information, as further described below. The one-time 
programmable ROM 210 may be implemented by a fuse bank or other 
one time programmable technology. 

The configuration ROM 211 includes a location for storing an 
encryption key used in the generation of the electronic authentication 
information. In the illustrated embodiment, the encryption key is a 
secret key 232 consisting of 64 binary bits that comprise a random 56 
binary bit number and an 8 binary bit checksum. The secret key 232 is 
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stored in the configuration ROM 211 during fabrication of the 
microcontroller 202, such as at wafer probe using laser trim or fusible 
link techniques. To ensure security of the secret key 232, the 
microcontroller 202 disables accesses to the secret key 232 while 
5 executing code external to the mask program ROM 212. Such security 
measures are further described in U.S. Patent Application Ser. No. 
08/730,188, "Microcontroller Which Limits Access to Internal 
Memory", filed in behalf of Dorsey et al. on October 14, 1996, and - 
assigned to Motorola, Inc. 

10 The mask program ROM 212 includes a location for storing 

instructions for authenticating the electronic information. In the 
illustrated embodiment, the instructions are a message authentication 
program 234. The message authentication program 234 is preferably 
stored in the mask program ROM 212 during fabrication of the 

15 microcontroller 202. 

The RAM 214 provides locations for temporary storage of the 
electronic iirformation and the electronic authentication information 
during programming and authentication processes described further 
below. In the illustrated embodiment, the electronic information is 

20 temporarily stored in the RAM 214 as a temporary ESN 236 comprising 
a 32 binary bit number and the electronic authentication iiiformation is 
temporarily stored in the RAM 214 as a temporary MAC 238 
comprising a 32 binary bit number. 

The external memory, interface 216 provides compatibility 

25 between the microprocessor 208 and the EEPROM 204. The external 
memory interface 216 converts electronic information output by the 
microprocessor 208 from a parallel format on bus 220 into a serial 
format on bus 206. Likewise, the external memory interface 216 
converts electronic information retrieved from the EEPROM 204 via 

30 bus 206 from a serial format into a parallel format on bus 220. 

The programming interface 218 permits programming of the 
electronic information into the apparatus 200. The programming 
interface 218 provides compatibility between the microprocessor 208 
and an external programming fixture (not shown) that detachably 

35 couples to the external test connector of the user interface 114. In the 
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illustrated embodiment the programming interface 218 converts the 
electronic information output by the external programming fixture 
from a proprietary protocol, such as the three-wire bus protocol or the 
DSC (Digital Speech Control) protocol, on bus 228 into a serial format 
5 on bus 226. Likewise, Hie programming interface 218 converts 

electronic information output by the microprocessor 208 from a serial 
format on bus 226 into the proprietary protocol on bus 228. 

The electronic information is programmed into the apparatus 
200 according to a method iUustrated in HG. 3. The method of FIG. 3 is 
10 described hereinbelow in conjxmction with FIG. 2. The method is 

performed by the microprocessor 208 as part of its program instructions. 
The method is initiated upon attachment of the programming fixture 
to the programming-interface 218 (via the user interface 114 and bus 
228) and reception of an ESN program command from the 
programming fixture (at block 300). Upon reception of the command, 
the microprocessor 208 reads the ESN security bit 230 from the one- 
time programmable ROM 210 (at block 302). If the ESN security bit 230 
is a binary "one" (i.e., the ESN security bit 230 has akeady been 
programmed), the microprocessor 208 responds to the ESN program 
command by halting this subsequent attempt to program an ESN into 
the EEPROM 204 (at block 304). 

If the ESN security bit 230 is a binary "zero", the microprocessor 
208 proceeds to program the EEPROM 204. The microprocessor 208 
responds to the ESN program command by receiving an ESN from the 
programming fbcture and temporarily storing this ESN in the RAM 214 
as the temporary ESN 236 (at block 306). The microprocessor 208 
generates a MAC associated with the temporary ESN 236 and stores this 
MAC in the RAM 214 as ttie temporary MAC 238 (at block 308). 

The temporary MAC 238 is generated according to a method 
30 illustrated in FIG. 4. The method is embodied in the message 

authentication program 234 of HG. 2 stored in the mask program ROM 
212. The message authentication program 234 is executed from the 
mask program ROM 212 by the microprocessor 208. The message 
authentication program 234 comprises an authentication algorithm 400 
of FIG. 4. The authentication algorithm 400 is an encryption algorithm 
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that generates electronic authentication information from electronic 
information using an encryption key. 

In the illustrated embodiment, the authentication algorithm 400 
is the Data Authentication Algorithm (DAA) defined by the National 
5 Institute of Standards of the U.S. Department of Commerce in HPS 
(Federal Information Processing Standards) Publication No. 113. The 
DAA uses the Data Encryption Standard (DES) defined by the National 
Institute of Standards of the U.S. Department of Commerce in FIPS 
Publication No. 46-1. To generate the temporary MAC 238, the 

10 microprocessor 208 retrieves the secret key 232 from the configuration 
ROM 211 and inputs the secret key 232 and an ESN word 402 to the 
authentication algorithm 400. 

For compatibility wid\ the DES, the ESN word 402 comprises a 64 
bit binary number or a multiple of a 64 bit binary number. In one 

15 embodiment, the microprocessor 208 generates the ESN word 402 by 
appending 32 binary "zero" bits to the end of the temporary ESN 236. 
In another embodiment, the microprocessor 208 appends a message, 
such as a hash code, to the end of the temporary ESN 236. A hash code 
is a condensed representation of a larger message. One example of the 

20 hash code would be a 32 binary bit check sum generated from the 

contents of the mask program ROM 212. Another example would be a 
message digest generated in accordance with the Secure Hash 
Algorithm (SHA-1) defined by the National Institute of Standards of 
the U.S. Department of Commerce in FIPS Publication No. 180-1. The 

25 message digest is a 160 bir\ary bit nxunber generated by the SHA-1 from 
any message up to 2^ binary bit numbers in length, such as the 
program instructions stored in the mask program ROM 212 or the 
ROM (not shown) external to the microcontroller 202. Any changes to 
the message (i.e., the program instructions of the mask program ROM 

30 or the external ROM) will result in the generation of a different 

message digest. Once generated, the message digest can be stored in the 
EEPROM204. 

Although the DAA, the DES, and the SHA-1 are preferably 
employed in the illustrated embodiment, one skilled in the art will 
35 recognize that other cryptographic algorithms can alternatively be used 
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to generate the electronic authenticaHon information and, thus, 
"algorithm" as used herein shall refer to each of these and their 
equivalents. 

Referring back to HGs. 2 and 3, once the temporary MAC 238 is 
generated, the microprocessor 208 stores the temporary ESN 236 and 
the temporary MAC 238 in the EEPROM 204 as the ESN 205 and the 
MAC 207, respectively (at block 310). The ESN 205 and the MAC 207 
stored in the EEPROM 204 are not encrypted. The microprocessor 208 
programs the ESN security bit 230 in the one-time programmable ROM 
210 to have a binary "one" value (at block 312). Once the ESN security 
bit 230 is programmed, the method of programming the electronic 
information is concluded (at block 304). 

Prior to making calls, the local device 104 of HG. 1 must transmit 
the ESN 205 of FIG. 2 to the remote device 102 of FIG. 1 for registration 
on the communication system 100. If registration is not accomplished, 
no calls can be made or received by the local device 104. Prior to 
transmitting the ESN 205 to the remote device 102, the apparatus 200 of 
HG. 2 authenticates the ESN 205 according to a method illustrated in 
HG. 5. Authentication miiumizes the opportxmity for fraudulent use 
of the ESN 205 in the local device 104 or other local devices for use in 
the communication system 100. The method of HG. 5 is described 
hereinbelow in conjunction with HG. 2. The method is embodied in 
the message authentication program 234 stored in the mask program 
ROM 212. The message authentication program 234 is executed from 
the mask program ROM 212 by the microprocessor 208. Control of the 
execution of the message authentication program 234 is secured by 
means described in U.S. Patent Application Ser. No. 08/730,188, 
previously cited. 

The method is initiated during a power-up sequence of the local 
device 104 when the message authentication program 234 receives an 
ESN authentication command from the microprocessor 208 (at block 
500). Upon reception of the command, the message authentication 
program 234 directs the microprocessor 208 to read the ESN security bit 
230 from the one-time programmable ROM 210 (at block 502). If a 
binary "zero" is read (i.e., the ESN security bit 320 has not been 
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programmed), the message authentication program 234 halts 
authentication and flags the microprocessor 208 to prevent registration 
(at block 504). 

If a binary "one" is read in the ESN security bit 230 (i.e., the ESN 
5 security bit 230 has been programmed), the message authentication 
program 234 proceeds to authenticate the ESN 205. The message 
authentication program 234 directs the microprocessor 208 to retrieve 
the ESN 205 and the MAC 207 from the EEPROM 204 and store the ESN 
205 and the MAC 207 as the temporary ESN 236 and the temporary 

10 MAC 238, respectively, in the RAM 214 (at block 506). The message 

authentication program 234 directs the microprocessor 208 to generate a 
new MAC from the temporary ESN 236 (at block 508). The new MAC is 
generated in the manner previously described with respect to FIG. 4 
and generation of the temporary MAC 238 during programming. That 

15 is, the authentication algorithm 400 generates the new MAC from the 
temporary ESN 236 and the secret key 232: 

Once generated, the message authentication program 234 directs 
the microprocessor 208 to compare the new MAC with the temporary 
MAC 238 (at block 510). If the new MAC and the temporary MAC 238 

20 do not match, the message authentication program 234 flags the 

microprocessor 208 to prevent registration (at block 504). If the new 
MAC and the temporary MAC 238 are the same, the ESN 205 is 
authenticated. The message authentication program 234 flags the 
microprocessor 208 to proceed with registration and transmit the ESN 

25 205 to the remote device 102 (at block 512). Once the microprocessor 208 
is flagged to transmit the ESN 205, the method of authenticating the 
ESN 205 is concluded (at block 504). 

Although illustrated in a cellular radiotelephone, programming 
arid authenticating electronic information as described herein will also 

30 find application in cordless telephones, two-way radios, trunked radios, 
pagers, personal digital assistants, and the like, and "device" as used 
herein shall refer to each of these and their equivalents. 

Although the present apparatus and method is shown to secure 
an ESN in an external memory device, one skilled in the art will 

35 recognize that other electronic information, such as program 
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instructions stored in a ROM external to the microcontroller, could be 
similarly secured. By associating the program instructions in the ROM 
with both a security flag contained in the microcontroller and 
electronic authentication information stored in the ROM and 
performing authentication on the program instructions during the 
power-up sequence of the communication device, xmauthorized 
reprogramming and swapping out of the external ROM can be deterred. 

Thus, it can be seen that fraudulent use of electronic information 
to gain access to a communication system, such as a cellular 
radiotelephone system, can be minimized even if the electronic 
information, such as an ESN, is stored im-encrypted in a memory 
device, such as an EEPROM, external to a microcontroUer integrated 
circuit. By employing a one-time programmable security bit in the 
microcontroller, reprogramming of the ESN is prevented. By 
employing a random, secret key-based authentication algorithm that 
creates and requires an association between the ESN and electronic 
authentication information, such as a MAC, system access can not be 
achieved by swapping out the EEPROM with another EEPROM 
containing a different ESN and MAC. 



What is claimed is: 



Claims 



1. An apparatus for securing electronic information in a wireless 
communication device, the apparatus comprising: 

an external memory; and 

a microcontroller coupled to the external memory to store the 
5 electronic information therein, the microcontroller further comprising 
a one-time programmable security flag, the one-time programmable 
security flag indicating storage of the electronic information in the 
external memory. 

2. An apparatus according to claim 1 wherein the microcontroller 
further comprises a microprocessor, a one-time programmable 
memory storing the one-time programmable security flag, a mask 
program memory storing an algorithm to generate electronic 

5 authentication information from the electronic information, and an 
internal bus coupled to the microprocessor, the one-time 
programmable memory, and the mask program memory, and the 
microcontroller executing the algorithm to store the electronic 
authentication information in the external memory. 

3. An apparatus for securing electronic information in a wireless 
commtmication device, the apparatus comprising: 

an external memory to store the electronic information and 
electronic authentication information associated therewith; and 
5 a microcontroller coupled to the external memory, the 

microcontroller further comprising an algorithm to generate electronic 
authentication iiiformation from the electronic information, the 
microcontroller to authenticate the electronic information using the 
algorithm upon retrieval of the electronic information and the 
10 electronic authentication information from the external memory. 
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4. An apparatus according to claim 3 wherein the microcontroller 
further comprises a microprocessor, a mask program memory storing 
the algorithm, a one-time programmable memory storing a security 
flag, and an internal bus coupled to the microprocessor, the mask 
program memory, and the one-time programmable memory, and the 
security flag indicative of storing of the electronic information and the 
electronic authentication information in the external memory so as to 
prevent reprogramming of the external memory. 

5. An apparatus according to claim 3 wherein the microcontroller 
further comprises a microprocessor, a mask program memory storing 
the algorithm, a configuration memory for storing an encryption key 
for use by the algorithm, and an internal bus coupled to the 
microprocessor, the mask program memory, and the configuration 
memory. 

6. A method for securing electronic information, the method 
comprising the steps of: 

storing the electronic information in an external memory; and 
programming a one-time programmable security flag in a 

microcontroller to indicate storage of the electronic information in the 

external memory. 

7. A method according to claim 6 further comprising the steps of: 

receiving, at the microcontroller, the electronic information^ 
from an external programmiilg fixture. 

generating electronic authentication information via an 
algorithm stored in the microcontroller; and 

storing the electronic authentication information in the external 
memory. 
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8. A method for securing electronic information, the method 
comprising the steps of: 

retrieving electronic authentication information and electronic 
information from an external memory; and 
5 authenticating, in a microcontroller, the electronic information 

from the electronic information and the electronic authentication 
information. 

9. A method according to claim 8 wherein said step of authenticating 
comprises the substeps of: 

supplying electronic information to an algorithm stored in the 
microcontroller; 
5 supplying an encryption key to the algorithm; 

receiving new electronic authentication information from the 
algorithm; and 

comparing the new electronic authentication information with 
the electronic authentication information. 

10. A method according to claim 8 further comprising the steps of: 

retrieving a security flag contained in a one-time programmable 
memory of the microcontroller; and 

proceeding to said step of retrieving electronic authentication 
5 information and electronic information only if the security flag has 
been programmed. 
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